PT-2019-13732 · Octopus Deploy · Octopus Deploy

Slewis74

Publicado

2019-08-05

Atualizado

2022-07-27

CVE-2019-14525

CVSS v3.1

4.9

Média

Vetor

AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Octopus Deploy versions 2019.4.0 through 2019.6.x before 2019.6.6 Octopus Deploy versions 2019.7.x before 2019.7.6

Description An authenticated system administrator can view sensitive values by visiting a server configuration page or making an API call.

Recommendations For Octopus Deploy versions 2019.4.0 through 2019.6.x before 2019.6.6, update to version 2019.6.6 or later. For Octopus Deploy versions 2019.7.x before 2019.7.6, update to version 2019.7.6 or later.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2019-14525

Produtos afetados

Octopus Deploy

PT-2019-13732 · Octopus Deploy · Octopus Deploy

CVE-2019-14525

Identificadores relacionados

Produtos afetados

Referências · 6